SUMMARY: ldap - how to change userPassword value

From: Beck, Joseph (jbeck@seic.com)
Date: Mon Jun 05 2006 - 11:03:49 EDT


Thanks to all who responded...

To change a user's password via CLI:
/usr/bin/ldapmodify -h HOST -D "cn=directory manager" -w PASSWORD
dn: uid=USER,ou=People,dc=DOMAIN,dc=COM
changetype: modify
replace: userPassword
userPassword: newpassword

console/GUI several agreed is not best utility out there for these types
of tasks.

-----Original Message-----
From: sunmanagers-bounces@sunmanagers.org
[mailto:sunmanagers-bounces@sunmanagers.org]On Behalf Of Beck, Joseph
Sent: Friday, June 02, 2006 11:10 AM
To: sunmanagers@sunmanagers.org
Subject: ldap - how to change userPassword value

>From man passwd, I see you can do a

passwd -r ldap <username>

but when I try to do that I get permission denied

I was hoping there was a way to pass in cn=Directory Manager

But I don't see it.

I also went to the IDS (sun directory server) console & tried to do it
thru there, but I have some confusion around what shows up there. There
is a password attribute but I don't believe it's the userPassword. I
guess I don't yet grasp how the attributes & values of some of the
objectclasses map & how to edit them

bash-3.00# ldaplist -l passwd jbeck

dn: uid=jbeck,ou=people,o=xxx.com

        cn: jbeck

        uidNumber: 1675

        gidNumber: 1008

        gecos: Joe Beck

        homeDirectory: /home/jbeck

        loginShell: /bin/ksh

        objectClass: posixAccount

        objectClass: shadowAccount

        objectClass: account

        objectClass: top

        uid: jbeck

        userPassword: {crypt}4jshG123YQxxx

        shadowLastChange: 13248

        shadowFlag: 0

I fell back on the delete the acct & readd it due to meeting a deadline,
but would like to know the correct process for future needs.

Joe Beck Ciber Inc. - a consultant to SEI One Freedom Valley Drive |
Oaks, PA 19456 | p: 610.676.2258 | jbeck@seic.com
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers



This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:40:02 EDT